none
What is the procedure to disable any account from using MS Edge. Do a search on Exploit-db,com for Edge. There are so many holes. RRS feed

  • Question

  • Hi,

    I still haven't found out how to block MS Edge for my users. Try doing a search on Exploit-db.com and see all the attacks for MS Edge. And you'll be worried like me. Exploit-db is a penetration testers site. I think my team membership on the blue team is numbered.

    Additionally I would like to be PCI DSS COMPLLANT.  And they want unused things turned off in the firewall. How can I explain to management that MS Edge is not dangerous, with it having so many exploits and with it having both an inbound allow rule and an outbound allow rule. The requirement is right up there in Requirement 1. Prove to my accessor that Edge is no danger even with both those allow rules. Give me something to read. I can read documentation.

    From the looks of it, firewalls are deprecated for Win Apps. 

    Wednesday, February 22, 2017 7:07 PM

Answers

  • Hi Samaru,

    You could try Software Restriction Policies.

    Based on my test, it works fine under Windows 10 14393.693.

    Follow my steps:

    1. Open the Local Group Policy Editor.

    2. Located to the following path:

    Computer configuration\Windows Settings\Security Settings\Software Restriction Policies

    3. Expand it, add new addition path rule as below:

    4. Click Apply and OK to exit the window.

    5. Restart the computer to take effect.


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • Proposed as answer by Narcoticoo Thursday, February 23, 2017 7:01 PM
    • Marked as answer by Samaru Zoka Friday, February 24, 2017 10:32 PM
    Thursday, February 23, 2017 7:55 AM
    Moderator

All replies

  • Well Windows 10 Enterprise LTSB does not have Edge, so have a look at that and test that.

    Cannot see Edge myself with any firewall rules specific to Edge, so what are they call where are you seeing them?

    Wednesday, February 22, 2017 10:17 PM
  • Hi, 

    I am on Win 10 Pro, and it does have Edge. The firewall rules are labeled "Microsott Edge".

    Thursday, February 23, 2017 6:10 AM
  • Hi Samaru,

    You could try Software Restriction Policies.

    Based on my test, it works fine under Windows 10 14393.693.

    Follow my steps:

    1. Open the Local Group Policy Editor.

    2. Located to the following path:

    Computer configuration\Windows Settings\Security Settings\Software Restriction Policies

    3. Expand it, add new addition path rule as below:

    4. Click Apply and OK to exit the window.

    5. Restart the computer to take effect.


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • Proposed as answer by Narcoticoo Thursday, February 23, 2017 7:01 PM
    • Marked as answer by Samaru Zoka Friday, February 24, 2017 10:32 PM
    Thursday, February 23, 2017 7:55 AM
    Moderator
  • Hi Narcoticoo

    Thanks very much for the solution. 

    Friday, February 24, 2017 10:32 PM